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METHOD FOB SETTING UP CaSSMUMICATIOlT PAHAMETERS IN UPN UBHra A HAHDWAHB TOKm 

B ACKGROUKD OF THE INVENTION 

5 

1 . Field of tlie Invenlion 

The mvention relates to systems and methods for implementing secured IP 
(internet protocol} networks. Especially, the invention is related to such a method 
10 as specified in the preamble of the independent method claim. 

2. Description of Related Art 

At least the following acronyms are used within this specification: 



BOOTP bootstrap protocol [B OOTF] 

DHCP dynamic host configuration protocol PHCP] 

FW Firewall 

GPRS general radio packet service 

GSM global service for mobile telecommunications 

IETF Intemet Engineering Task Force 

IP Internet Protocol [IP] 

IPSec IP security protocol [IPSEC] 

LAN local area network 

NAT network address translation 

PKI public key infrastructure 

RARP reverse address resolution protocol [RARP] 

SIM subscriber identity module 

TCP transmission control protocol [TCP] 
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TFTP 


trivial ffle transfer protocol [TFTP] 


URL 


uniform resource locator 


VPN 


Virtual Private Network 


YRRP 


Virtual Router Redundancy Protocol [VREP] 


5 WLAN 


wireless local area network 



A firewall is a device, or more accurately a set of programs protecting resources of 
a private network or a computing devices from outside users. Firewalls are 
typically located between a private network of an organization and a public 

10 network. A firewall filters the traffic between the networks, allowing certain kinds 
of traffic to pass and rejecting other types of traffic. A set of rules known as 
firewall rules determine which types of traffic are allowed in which direction, and 
which types of traffic are rejected. For maximum security, a firewall is typically 
installed in a dedicated computer whose only duty is to act as the firewall. Also so 

15 called personal firewalls are known, which typically are programs or sets of 
programs installed on a user's workstation, for protecting the data and programs in 
liat particular workstation against snoopmg or sabotage. Various examples of 
firewalls are given for example in the patent US 5,826,014. 

20 A vutual private network (VPN) is a network, which is formed on top of another, 
typically an untrusted public network by using secured connections between VPN 
nodes. Virtual private networks are gaining popularity, since a VPN allows the 
LANs of remote offices of an organization to be connected without requiring a 
dedicted cable connection between the offices. The LAN of each site is connected 

25 to a public network such as the Internet via a VPN node, and the VPN nodes 
manage the transmission of traffic between the LANs, taking care of encryption 
and authentication. Typically, a VPN node connecting a LAN to a public network 
also comprises firewall functionality. Various examples of VPNs are given for 
example in the document RFC 2764 [Gleeson]. Connections between the VPN 
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nodes are typically encrypted and authenticated according to the IP security 
protocol. 

The IP security protocol [TPSEC] is being standardized by the IETF (Tnternet 
5 Engmeering Task Force) for adding security to the well-laiown and widely used IP 
protocol. It provides cryptographic authentication and confidentiality of traffic 
between two communicating network nodes. It can be used in both end-to-end 
mode, i.e. directly between the communicating nodes or hosts, or in tiurnel mode 
between firewalls or VPN devices. Asjonmetric connections, where one end is a 
10 host and the other end is a firewall or VPN are also possible. 

Conventionally, the constmction of a virtual private network (VPN) is a large 
project for an organization, requiring large efforts in planning and implementation 
of the VPN. Constmction of a VPN according to solutions presented in the prior 
15 art require sophisticated professional skill, whereby most organizations need to 
employ expensi ve consultants for the project. In a typical case, VPN and firewall 
functionality is added to existing LANs, for example for connecting local 
networks of two offices of the organization via the Internet. Typical phases of such 
a project are the following: 

20 

- collecting information of the present stmcture of the affected LANs, 

- specifying the needed functionality of the VPN and firewall, 

- planning the structm'e of the VPN and defining the firewall traffic control ruleSj 

- obtaining the necessary equipment and software, 
25 - installing and configuring the software, 

- setting up the equipment in a test environment, 

- testing the setup and cocrecting of possible eirois, 

- moving the equipment to production locations, 

- connecting the equipment to the LANs and the internet, 
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- performing the final test, 

- taking the VPN into full use. 

As can be seen, such a project is coamplicated, and requires a relalivdy long time 
5 to implement. However, if the organization has several remote offices conhecting 
to a central ofSce, the setup needed at each remote office can be replicated 
relatively easy after the VPN equipment at the first remote office has been 
configured and tested - unless the LAN configurations and/or needed 
functionalities vary a great amount. 

10 

Maintenance of the VPN/firewall system is also a significant source of costs. 
Configuration of the system mast be updated, if a new LAN is to be connected to 
an existing VPN, or for example if the selection of protocols passed through the 
firewall to the Internet and back is to be changed. Typically, such configuration 
15 changes require an on-site visit of a maintenance engineer. In order to maintain the 
security of the systems, tlie software in the VPN/firewall devices need to be 
periodically updated to cover any faults and holes, which could be abused by 
malicious or spying third parties. A software update typically requires a visit by a 
maintenance engineer to update the software on site. 

20 

The maintenance is typically a large expense ta the long run, and when combined 
with the expenses related to setting up of the systems in the beginning, these work 
related costs typically far exceed the costs of the needed equipment. More easily 
deployable and manageable systems are clearly needed. 

25 

Explosive growth of the Internet has strongly uicreased the importance of making 
networldng equipment easier to install and manage. This is particularly trae when 
implementing security services, such as virtual private networks, on the networks. 
VPNs involve routing, data encryption, public key infrastructure (PKl), data 
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enciyption, network address translation, firewalls, and many other complicated 
data communications and security technologies. It has become extremely difficult 
to find enough technical expert skilled in all these areas to configure and build 
such networks. 

5 

Traditionally, single networking devices have been configured using a command- 
line configuration method from a console port (for example, Cisco routers). Often, 
the command-line method is used to enable a networking port, and rest of the 
configuration is then performed by connecting to the networking device from a 
1 0 remotely located management center. 

Some known devices permit configuration using a web browser. In this case, the 
user connects to the device through the network using the Transmission Control 
Protcol / Internet Protocol (TCP/IP). Prior art includes devices that are factory- 
13 configured to use a pre-defined IP addiess, as well as devices that will respond to 
any IP address in die factory configuration. Some wireless LAN access devices 
will respond to any web-based requests even if the user has not already been 
authenticated. 

20 There are also devices which are managed through a local area network using 
protocols that operate in a single ethemet net^vork. For example, HP Color 
Laserjet printers can be configured using HP's management software from any 
Windows-based workstation connected to the local network. 

25 Trivial File Transfer Protocol (TFTP), together with Reverse Address Resolution 
Protocol (RARP), BOOTP, and/or Dynamic Host Configuration Protocol (DHCP) 
are also used to configure devices.. In these systems, the device first obtains an IP 
address from the network, and then obtains its own configuration infonnation 
using e.g. DHCP or TFTP. Examples of this kind of devices include diskless Sun 
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Workstations in 1980's, diskless PC workstations, Windows workstations that 
obtain their IP address and other configuration information from DHCP. Cisco 
routers can also fetch their configuration file using TFTP firom a configured server. 

5 There is some prior art on configuring devices using smartcards. For example, the 
GSM SIM card contains the subscribers identity number and a cryptographic key 
for authentication, The SIM card also contains computational logic for executmg 
an authentication an key generation algorithm on the SIM card, avoiding the need 
to transfer tlie secret key out from the card. The SIM card is used to authenticate 
10 the phone into the GSM network to allow communication. In GPRS, the GSM 
Packet Radio Systems, each phone can have an IP address. The GSM terminal 
(cellular phone) uses the SIM card to authenticate itself to the network, and 
obtains an IP address from tiie network. 

15 Mobile IP defines a framework for an IP-based registration mechanism, whereby a 
mobile node can obtain information about foreign agents, can register to a foreign 
agent, and can obtain limited configuration information, such as a care-of-address 
fram the foreign agent. There is also an authentication mechanism for Mobile IP 
proposed by Nokia that is based on using GSM SIM cards for authentication. 

20 

Security-aware devices for the Internet usually implement IPSEC and PKI 
functionality. These devices need to be configured with sensitive key material. 
The addition of security greatly complicates tiie installation of the network. 
Security-aware devices usually also need reasonably accurate time infoimation in 
25 order to verify timeliness of security credentials such as certificates or digital 
signatures presented by other network nodes. Furthermore, the \diole installation 
process must be secured, so that an attacker cannot compromise the network at any 
time. For example power outages are relatively easy to cause maliciously, and a 
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method that can be compromised by causing a short power outage is not 
acceptable. 

VPN devices are i:aually configured like routers. Typically, a serial port (console 
5 port) is used to peirform liie initial configuration. Some devices can be configured 
tbrough a web interface. 

Usually, after initial configuration networking devices are connected to a 
management system. The management system can then modify the configuration 
10 of the devices, and may in some cases even be able to upgrade the software of the 
networldng device. 

The prior art methods suffer from several problems: 

- they typically do not work if the networking device is separated from the 
15 management system by a NAT (Network Address Translation) device or by a 

firewall, 

- they usually require that initial configuration is performed manually, and 

- the ooiBnHuiication between the network device and the management system is 
typically not properly secured. 

20 

SUMMARY OF THE INVENTION 

An object of the invention is to realize a system for providing security services in a 
. data communications network, which is easy to install and maintain. A further 
25 object of the invention is to provide methods, which allow easy and simple 
management of security networks. 
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The objects are reached by arranging a network security device to obtain 
configuration information from a configuration information distribution entity and 
to configure itself according to obtained configuration information. 

5 The method for setting up communication parameters in a virtual private network 
node for connecting to at least one other node in the viitual private network is 
characterised by the steps of 

- reading information from a hardware token for determining how to connect to a 
packet data network, 

10 - reading information from the hardware token for determining how to obtain 
configuration infbrmatiofl for the virtual private network node, 

- connecting to a packet data network on the basis of inforroatioii read from the 
hardware token, 

- obtaining configmaiion information for the virtual private network node on the 
1 5 basis of information read from the hardware token, and 

- using obtained configuration infomation for setting up the caramunication 
pararaetas. 

The method for setting up a secured communications network, which network 
20 comprises at least two security nodes connected to a packet data network* 
is characterised by the steps of 

- producing configuration information for the security nodes, 

- storing said produced configuration information, 

- inserting a part of configuration information corresponding to a certain security 
25 node into a certain hardware token, 

- reading of configurarion information from said certain hardware token by said 
certain security node, 
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- obtaining the rest of produced configuration information for said certain security 
node by said certain secnrity node on the basis of data read from said ceitaia 
hardware token, and 

- setting of communication parameters within said certain security node on the 
5 basis of said obtained configuration infomiation. 

The noethod for producing and distributing configuration data for a virtual private 
network, which network comprises at least two security nodes connected to a 
packet data network, is characterised by the steps of 
10 - producing configuration ittfonnation for the security nodes; 

and for each security node for which configuration information was produced, 

- storing a part of said produced configuration information of the security node in 
a hardware token corresponding to the security node, 

- encrypting at least a part of configuration information corresponding to the 
15 security node, 

- digitally signing said at least a part of configuration information, and 

- storing said encrypted and digitally signed configuration information in a 
memory means accessible to a distribution entity. 

20 The system for managing configuration information of a secure communications 
network, said secure communications network having a plurality of security nodes 
connected to a packet data network, is characterised by 

- a first computer node, 

- a configuration management entity in said first computer node, 
25 - a second computer node, 

- a distribution entity in said second computer node, 

- a memory means accessible by said distribution entity, 

- connected to said first compute! node, means for inserting infoimation in a 
hardware token, 
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- computer software code means for generating config^ation information, 

- computer software code means for encrypting a set of configuration information, 

- computer software code means for digitally signing a set of configuratioiJ 
informatioE, 

5 - computer software code means for causing a set of configuration information to 
be stored in said memory means, 

- computer software code means in said distribution entity for receiving a request 
for configuration information, from a security node and for transmitting a set of 
configuration information as a response to receiving a request for configuration 

10 information. 

The security device for a secured communications network which security device 
has at least two network interfaces, a memory module and a processor, is 
characterised by 

15 - a hardware token reader for connecting to a hardware token and for reading 
information from a hardware tokens 

- computer software code means for reading information from a hardware token, 

- computer software code means for transmitting a request of configuration 
information to a network address, 

20 - computer software code means for receiving a set of configuiation information, 

- computer software code means for decrypting a received set of configuration 
information, 

- computer software code means for verifying authenticity of a received set of 
configuration information on the basis of a security item obtained ftom a hardware 

25 token, and 

- computer software code means for setting of comrnnnication parameter on the 
basis of a received set of configuration information. 
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The invention provides metliods for configuring virtual private network devices 
with minimal requirements for manual interaction. According to the invention, at 
least basic IP address information or an indication to use a dynamic address 
assignment protocol as well as an indication of how to obtain fuU configuration 
5 information are stored in a hardware token. A virtual private network device is 
configured by allowing the virtual private network device to read the information 
stored in the hardware token, obtain full configuration information for the device 
based on the information in the hardware token, and to configure itself according 
to obtained configuration information. 

10 

BRIEF DESCRIPTION OF THE DRAWING 

Various embodiments of the invention will be described in detail below, by way of 
example only, with reference to the accompanying drawings, of which 

15 

Figure 1 illustrates a system according to an aspect of the invention, 

Figures 2a and 2b illustrate various methods according to different embodiments 
of the invention, 

20 

Figures 3a, 3b, and 3c illustrate further methods according to different 

embodiments of the invention, 

Figures 4 a and 4b illustrate still further methods according to different 
25 embodiments of the invention, 

Figure 5 illustrates a further system according to an advantageous embodiment of 
the invention, and 



wo 02/078290 



PCT/5I02/00250 



12 

Figure 6 illustrates a security device according to an advantageous embodiment of 
the invention. 

Same reference numerals are used for similar entities in the figures. 

5 

DETAE.ED DESCRIPTION OF THE PREFERRED EMBODIMENTS 

The exemplary embodiments of the invention presented in this description are not 
10 to be interpreted to pose limitations to the applicability of the appended claims. 
The verb "to comprise" is used as an open limitation that does not exclude the 
existence of also unrecitcd features. The features recited in depending claims are 
mutually freely combinable unless otherwise explicitly stated. 

15 

A NETWORK DEVICE ACCORDING TO AN ASPECT OF THE INVENTION 

In this section, an example of a network device according to an aspect of the 
invention is described. The purpose of the network device is to provide at least 
20 IPSec services for certain other network devices. 

The network device comprises a processor, non-volatile memory such as flash 
memory, read- write memory (RAM), at least two network interfaces, and a 
hardware token reader such as a smartcard reader. Advantageously, the device has 
25 three network interfaces, which wonld allow the device to connect to a LAN and 
an external network as well as to other network devices sharing the traffic load at 
the installation location. Advantageously, the device also comprises special 
hardware for acceleratuig cryptographic operations such as a FPGA or a special 
cryptographic chip. The device comprises operating system software and 
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application sofLvvaie for providing the desired services in the non-volatile memory. 
Before installation at a specific site for providing specific services at that site, the 
network device does not comprise a specific configuration for the site. For 
configuration purposes, the network device comprises software for obtaining 
5 configuration data on the basis of information in a hardware token connectable to 
the device and for configuring the device according to obtained configuration data, 
Therefore, such a network device can be manufactured in large numbers, and any 
such device can be taken to a particular site for installation. After insertion of a 
smartcard or other hardware token the device adapts to the topology of the 

10 installation site and the functional requirements by obtaining configuration data 
and configuring itself. Further, the device advantageously checks periodically if its 
configuratiou should be updated, and updates its configuration automatically if a 
configuration change is needed. Such an approach allows a very easy installation 
of the device without expert personnel at the installation site, and a very easy 

15 maintaining and updating of the network configuration at the installation site 
without any expert personnel at that site. 

Preferably, a hardware token such as a smart card removably attachable to the 
network device using the hardware token reader of the network device contains at 
20 least the following information: 

- a private key for the network device for authentication purposes, 

- a certificate or a public key corresponding to the private key, 

- certificate of a management system allowed to control the network device in 
order to allow the networic device to authenticate any messages from flie 

25 management system, 

- network address of a distribution node of the management system, and 

- network interface parameters for the device such as IP address, netmask and 
default gateway address, or alternatively an indication to obtain them dynamically 
flrom the local network services by using for example the DHCP protocol. 
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The distribution node can advantageously be a HTTP server, which allows the 
network device to communicate with the distribution node using the HTTP 
protocol. Other protocols can also be used. For example, the conummication can 
5 also be effected connectionlessly using a protocol on top of the UDP protocol. 

The hardware token can be any smartcard, for example a smartcard according to 
the ISO 7816 standard. The data may be stored on the smartcard using e.g. PKCS- 
15 formats. As a man skilled in the art knows, many other data storage formats 
10 and exact contents are possible, and file smartcard may also contain other data. 

When powered on, the device reads the initial configuration information fi:om the 
smartcard. If the configuration information on the smartcard includes the IP 
address, netmask, and default gateway, the device configures one of its network 
15 interfaces with that information. Otherwises it uses e.g. the DHCP protocol to 
obtain similar information for the interface from the local network. 

The device then connects to the network address of the distribution, node of the 
management system and retrieves its configuration information. Preferably, the 
20 network device performs this using the GET method of the HTTP protocol 
[HTTP]. Other ways are also possible as a man skilled in the art, such as the use of 
the FTP protocol [FTP]. Hie network device can also use other protocols as well, 
such as the SOCKS protocol [SOCKS] to get through firewalls. 

25 For confirming the authenticity of the configuration information stored on the 
distribution node, the configuration information is digitally signed. Therefore, in 
an advantageous embodiment of the invention, the configuration information 
comprises at least the actual configuration data and a digital signature of the data 
created with the private key of the management system which produced the 
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configuration data. The configuration data may also include a certificate chain for 
the key. The device then verifies the signature using the certificate of the 
management system that was stored on the hardware token, 

5 The configuration information may also comprise any IPSec configuration 
information, as weU as other type of configuration information, such as for 
example configuration infonnation regarding QoS (quality of service) 
functionality, routing, firewall functionality, or anti-virus functionality. 

10 In a furttier advantageous embodiment of the invention, the configuration data 
Stored at the distribution node is also encrypted by the management system using 
the public key of the network device. This siHoyfs only the network node itself to 
access the data, even if third parties couid gain access to the encrypted file on the 
distribution point, 

15 

Instead of certificates and digital signatures, shared secrets and hash functions 
could equally well be used for authentication, as could any other known method 
for esnsuiing the integrity of data retrieved fi-om a server (e.g., by using the SSL 
protocol). 

20 

Once the signature has been verified, the network device configures itself fully 
using the obtained configuration data. The full configuration can comprise many 
different phases and method steps depending on the particular requirements at the 
installation site. As examples, possible configuration steps are presented here: 
25 - Depending on the configuration data, it may designate one of the interfaces for 
communicating with other network devices in a group of network devices. This 
allows die installation of a plurality of network devices to share the load in order 
to provide higher capacity and/or highetr availability than what is possible with a 
single network device. 
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- The device advantageously also checks whether it has been configured to 
automatically initiate a secure tunnel to some other hosts. If that is the case, it 
initiates a key negotiation (B.g., IPSEC IKE negotiation) with those hosts to open 
such tunnels. Advantageously, if a secure tunnel which has been configured to be 
5 kept open becomes inresponsive at some point in time, the device automatically 
attempts to re-establish the tunnel periodically, 

hi a further advantageous embodiment of the invention, the network device polls 
periodically the network address of the distribution node of the management 
10 system to see if its configuration data has changed. If it has, it retrieves new 
configuration data, and repeats the configuration process. The new configuration 
data may also be processed in an incremental fashion, so that only those parts of 
the device configuration are updated that have actually changed. 

15 In a still farther advantageous embodiment of the invention, the network device is 
arranged to send infonnation to the management system, for example to the 
distribution point or some other network address specified in the full configuration 
information. This can be performed using the the POST method of the HTTP 
protocol. Examples of such information are for example status infonnatioD about 

20 the network device and its activities as weU as statistical data for example about 
the traffic passed through the network device. 

In an even further advantageous embodiment of the invention, the network device 
is arranged to respond to SNMP protocol [SNMP] requests for allowing 
25 conventional network management and monitoring functions to access the network 
device. Advantageously, the network device allows only read requests, so that 
only title network management system dedicated to control the inventive network 
devices can affect the configuration of the network devices, and other tools based 
on SNMP could only monitor the configuration and/or collect mformation about 
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traffic such as statistics mformation. Further, the network device may also be 
configured to send SNMP traps to a designated address periodicaliy to report its 
status to another management system such as HP Open View. 

5 In a further advantageous embodiment of the invention the device is arranged to 
report status and/or statistics data to a distiibution node or another device, using a 
protocol that works over NAT, such as HTTP or TCP/IP. The protocol can also be 
a UDP-based protocol with proper keepalive mechanisms to avoid UDP mappings 
from expiring from NAT devices. 

10 

In a further advantageous embodimsmt of the mvention the device is arranged to 
report information about discovered NAT devices to the distribution node or 
another device. 

15 In a further advantageous embodiment of the iuvention the device is arranged to 
obtain the current date and time from the distribution node or another device. 

In a further advantageous embodiment of the invention the network device is 
arranged to request and receive a digital certificate for the network device. The 
20 network device may also be arranged to request and receive a digital certificate for 
renewing a certificate of the network device. 

In a further advantageous embodiment of the invention the device is arranged to 
obtain a dynamic IP address at the installation site for example using the DHCP or 
25 PPP protocol. In such a case, the configuration information advantageously 
comprises information about which nodes the network device should automatically 
open an IPSEC tunnel with, so that those nodes can communicate securely with 
nodes behind the network device even though the network device does not have a 
static IP address. Advantageously, the network device is arranged to report its 
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obtained IP address to the distribution node or another part of the management 
system. 



In certain advantageous embodiments, the network device comprises functionality 
5 for cooperating with other network devices in a group of network devices for 
providing high availability and/or high capacity and/or device replication. In such 
embodiments, the configuration data advantageously includes information about 
whether the device is to support these functions or not. Advantageously, the device 
comprises means for sending a probe message to some or all of its communication 

10 interfaces and means for determining whether other netwatt devices are connected 
to those interfaces in order to support high capacity, high availability and/or 
replication. Advantageously, configuration information in the hardware token or 
obtained from the distribution node comprises a secret key used by members of a 
network device group to establish secure communication among themselves. 

15 Advantageously, the network device comprises means for periodically reporting to 
the distribution node or another device about the status of other network devices in 
the group of network devices. Advantageously, the network device comprises 
means for monitoring tlie status of other members in the same group of network 
devices, and automatically reconfiguring the tasks of the remaining network 

20 devices if one of tlie network devices becomes inoperative. 



In a further advantageous embodiment of the invention, the network device is 
arranged to repeatedly receive further configuration information. Advantageously, 
the network device comprises means to request further configuration information 
25 and/or means for checking if further configuration information is available. 
Advantageously, the network devices comprises functionality to receive 
notifications of configuration changes and means for retrieving new configuration 
information as a response to a received notification of a configuration change. 
Notifications can be carried from the management system to the network device 
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for example using SNMP, IP multicast, HTTP, or any other communication 
mechanism that can be used to transmit information from the management system 
to the network device, 

5 la a further advantageous embodimeot of the invention, the network devioe is 
arranged to receive operating system updates from a distribution node. 

In a further advantageous embodiment of the invention, the network device is 
arranged to receive anti- virus database updates fixira a distribution node. 

10 

In some circumstances such as when the number of possible variations of 
configuration data is small enough to allow all possible variations of configuration 
data to be stored on the network devices, transmission of full configuration data 
from the distribution node to the network device can be effected by transmitting a 
15 hash of the data, and then selecting the correct set of configuration data on the 
basis of the hash. 

A METHOD ACCORDING TO AN ASPECT OF THE INVENTION 

20 

In this section, a method according to an aspect of the invention is discussed. The 
method comprises the following basic steps performed by a network device being 
installed at an installation location : 

25 - Accessmg initial configuration information from a secure storage device where 
the configuration information comprises at least the network address of an entity 
from which further configuiation information can be obtained. The entity is 
advantageously the network location of a part of a management system such as a 
configuration distribution node. The secure storage device can be for example a 
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smartcard or some other hardware token. The secure storage device is 
advantageously separably attached to the network devices, but can also be fixedly 
attached to the network device. The network address can be for example an IP 
address or an URL. 

5 

- connecting to said entity using a connection method, for example the HTTP 
protocol, that allows operation through NAT and/or firewalls. 

- u^ing initial configuration information to obtain further configuration 
10 information from said entity. 

- ensuring the autJienticity of further configuration information using key material 
stored in the secure storage device, 

15 - using said further configuration information to configure packet filtering 
functionality in the networking device. 

- using said further configuration information to configure the processing of IP 
packets according to the IPSEC protocol in the networking device. 

20 

- repeatedly receiving updated configuration information from said entity or 
another entity indicated by said farther and/or later updated configuration 
information, ensuring the authenticity of received updated configuration 
information using key material stored in the secure storage device. The network 

25 device can also initiate the transmission of configuration information by sending a 
request, such as a HTTP GET message to said entity. The network device can also 
merely wait for such transmissions without sending of explicit requests. 
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Advantageously, the network device performing the method is an IP VPN device 
that uses the IPSEC and IKE protocols and X.509 certificates. 



Advantageously, the secure storage device is a smartcard. Tlie secure storage 
5 device preferably also comprises an encryption and/or authentication key for the 
network device, authentication information (such as encryption/authentication key 

or certificate) for the management system allowed to change the configuration of 
the network device, aad the network address of the management system. 

10 In an advantageous embodiment of the invention, the network device comprises 
means for receiving initial configuration information into the secure storage device 
via a radio link. The radio link can be for example a Bluetooth radio Unk or a 
WLAN link. In a further advantageous embodiment of the invention, the network 
device comprises means for receiving initial configuration information into the 

15 secure storage device via a network interface. In a farther advantageous 
embodiment of the invention, the network device comprises means for receiving 
initial configuration information into the secure storage device via a serial port 
interface. 



20 In an advantageous embodiment of the invention, the method used as a connection 
method to connect the network device to said entity is IPSec with support for 
traversing a NAT function. In a still furthei- advantageous embodiment of the 
invention, the method used as a connection method to connect the network device 
to said entity is the COPS protocol used on top of a TCP/IP connection. In an even 

25 further advantageous embodiment of the inv^tion, the method used as a 
connection method to connect the network device to said entity is TCP/IP, with 
IETF specified policy information format data transmitted over the connection. 
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In an advantageous embodiment of the invention, said ftirther configuration 
informatLon comprises at least one or more of the following: 

- PKI configuration information, 

- identities and/or network: addnesses of certificate authorities, 

5 - network addresses of OCSP (Online Certificate Status Protocol) servers, 

- network addresses of LDAP servers 

- network addresses of Certificate Revocation List (CRL) distribution points, 

- allowed subjectnames, 

- required certificate extensions, and other PKI coaj&gnratioii information. 

10 

Advantageously, the integrity and/or confidenliality of the configtiration 
informatioii transmitted between said entity and the network device are protected. 
TTiis can be accomplished by digitally signing and/or encrypting the configuration 
data, whereby the method comprises the step of verifying the signature, and/or the 
15 step of decrypting the configuration data. In a further advantageous embodiment 
of the invention, the connection method used between said entity and the network 
device is cryptographic ally protected, i.e. authenticated and/or encrypted. Such 
flmctionality can be obtained for example by using IPScc as the connection 
method. 

20 

In a further advantageous embodiment of the invention, said further configuration 
information comprises a list of devices with whom the network device should 
actively open an IPSec connection without waiting for trafSc. This functionality 
allows those devices to send encrypted traffic to the network device even if the 
25 network device is hidden behind a NAT device. 

The further configuration information can also comprise mformation about which 
secure connections go through a NAT device. In a farther advantageous 
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embodiments of the invention, the network device has means for automatically 
discovering which secure connections go fhrough a NAT device. 

The further configuration information may also comprise a network address to 
5 which the device should send SNMP traps to report its status. Such functionality 
allows SNMP based network monitoring systems to receive information from the 
network device. 

10 A SYSTEM ACCORDING TO AN ASPECT OF THE INVENTION 

la this section, an example of a system according to an aspect of the invention is 
described with reference to figure 1. The system provides security services for 
certain parts of a data communicatioa network. The system comprises at least a 

15 configuration manager entity 100, a disttibution entity 200, and at least one 
network security device 300. The network security (kvice is used to connect parts 
of the data connection network 10, 20 to each other, and to provide IPSec, 
firewall, and/or othex functionality as needed. Networks 20 illustrate local area 
networks for example at certain office locations of a business, and network 10 

20 illustrates a pubUc data communications network such as the Internet. The 
configuration manager entity is used to define and change configurations for one 
or more network devices, and the distribution entity is used to store defined 
configurations of network devices and distribute these to the network security 
devices. 

25 

Ttie configuratioa manager entity can also be used to produce information for 
inclusion m hardware tokens for network security devices. Advantageously, the 
configuration manager entity either comprises or is connected to a hardware token 
writer, whereby the network administrator controlling the network can create the 
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hardware tokens for the network devices. After a network configuration is first 
created using the configuration manager entity, one hardware token is created for 
each network security device. Consequently, the network security devices are 
installed in the data communication network, each hardware token is attached to a 
5 coiresponding network security device, and the network security device is 
powered on, whereafter the network security device configures itself as described 
elsewhere in this specification and begins serving the data communications 
network, 

10 When a network security device is first installed and powered on, it attempts to 
obtain iiill configuration information from the distribution entity based on initial 
configuration information present in the hardware token associated with the 
network security device. If the distribution entity has the configuration 
information, it sends the information to the network security device. If the 

15 distribution entity does not have the configuration information, it obtains the 
configuration information from the configuration manager entity. If the 
transmission of the configuration information to the network security device fails, 
the distribution entity sends a configuration update notification to the network 
security device, which responds by rerequesting the configuration information. 

20 After obtaining the configuration mformation, the network security device 
configures itself as described elsewhere in this specification and begins serving the 
data communications network. 

In the following, the procedures in flie case of a configuration update are briefly 
25 described, l^t us assume that a network administrator has completed an 
configuration update. The configuration manager entity notifies the distribution 
entity, which rec^ves or fetches at least the changed configuration information 
from the configuration manager. Then the configuration manager sends a 
configuration update notification tx) those network security devices whose 
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configuration has changed, which respond by rerequesting the configuration 
information. After obtaining the configuration information, the network security 
devices configure themselves as described elsewhere in this specification and 
continue serving the data communications network. 

5 

Advantageously, the distributioii entity stores the configuration mfonnation units 
in encrypted form, so that each configuration information unit can only be read by 
the network security device, for which that particular configuration information 
unit is intended. Advantageously, the configuration manager entity performs the 

10 encryption, so that the distribution entity has no access to unencrypted 
configuration information. Advantageously, only the distribution entity can be 
accessed by nodes requesting configuration information. This configuration allows 
the placement of the distribution entity in a network zone having a relatively low 
security level, and the configuiation manager can be retained in a network zone 

15 having a very high security level. 



The inventive configuration allows many options in placement and control of the 
configuration manager entity and the distribution entity. For example, the 
configuration manager entity can be located in the headquarters of the company, 

20 whose office networks 20 are connected by the system, whereby the technical 
administration personnel of the company take care of maintaining the system. The 
configuration manager entity can also be controlled by a network provider, which 
is selling the security services as a service to the business. Further, the 
configuration manager entity can also be controlled by a consultant third party. 

25 The latter two examples illustrate situations, where the company itself does not 
need to have expert network security technicians of its own to install and maintain 
the security system. This is a large advantage, smce network security experts are 
scarce and expensive. In comparison, the prior art solutions require considerable 
on-site work time by a network security expert for installation and maintenance. 
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We note that although many of the previous examples of various embodirueuts of 
the invention have described a distribution entity to be located in a different 
computer node as a management entity, the invention is not limited to such an 
5 arrangement. As a man skilled in the art knows, functionalities implemented in 
software can be located in many different ways in a network of computer nodes. 
For example, a distribution entity can be located in the same computer node as a 
management entity. As a furdier example, a management entity can also serve as a 
distribution entity, if there is no specific need to have the distribution entity in a 
10 separate computer node. For large networks, it may very well be advantageous to 
have the distribution in another node as the management entity. For small 
networks the desire fiar sinqilicity may dictate otherwise. 

15 FURTHER ADVANTAGEOUS EMBODIMENTS OF THE INVENTION 

In a further advantageous embodiment of the invention, the configuration 
management entity is implemented iti the same device as a VPN gateway entity. In 
this particular embodiment, the device has a VPN gateway operating mode and a 

20 configuration management mode. Iq the configuradon management mode, the 
device can be used to define the stixictui"e of a VPN network, create key pairs for 
other security devices, create information for storing in hardware tokens for use by 
other security devices, and writing created information in hardware tokens. In this 
embodiment, a separate dedicated management workstation is not needed for 

25 managing and configuration of the VPN network, as all tasks performed by a 
management node can be handled with one of the security devices themselves. 
Advantageously, the operating mode of such a device is controlled by an 
arrangement requiring local physical access to the device by the operating person, 
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such as by using a switch or for example by whether or not a hardware token is 
inserted in a hardware token readea: of the device when the device is powered on. 

In addition to not requiring a dedicated management workstation, a key advantage 
5 in such an arrangement is that it is extremely easy to deploy even by persons who 
are not fully qualified expeits in networking technology. Such an arrangement 
allows the controls of the device to be extremely simple. For example, the physical 
controls of the device can be so simple as an on/off switch, two or more network 
connections, and a hardware token reader. If the device is switched on with a 

10 configured token in the hardware token reader, the device assumes the duties of a 
security device as dictated by configuration information on the haidwaie token. If 
the device is switched on without a configured token in the hardware token reader, 
the device assumes the duties of a configuration management node, which can 
then be used to define properties of a VPN, create keys for all security nodes, and 

15 to input key and configuration information into hardware tokens. In the 
configuration management made, the device advantageously provides a control 
interface via one of its network ports accessible with commonly available tools 
such as a web browser. Consequendy, in order to configure the network, a user 
simply connects a computer to a network port of the device, switches the device on 

20 without a hardware token in the hardware token reader, and accesses the 
configuration mterface of die device using for example a web browser. In such an 
example, the configuration interface in the device could be implemented by 
software modules able to receive queries and to present web pages to the user's 
browser software. 

25 

In a further advantageous embodinvent of the invention, a security device is 
arranged to function also as a configuration distribution node while in gateway 
operating mode. In this embodiment, the security device provides full 
configuration information data sets to other security devices. During configuration 



wo 02/078290 



PCT/5I02/00250 



of a secured network, the security device (i.e. one of the security devices chosen to 
be used as a configuration management node) is used in configuration 
management mode. As desciibed previously, the configuration results in 
configuration information for all security nodes. This configuration information is 
5 stored m a memory module in the security device, for example in a flash memory 
bank, on a hard disk, or in some other type of memory module. When the security 
node is used in gateviray mode, the security node answers to requests for 
configuration information from other security devices by sending configuration 
information stored in the memory module corresponding to the requesting security 
10 device. In an advantageous embodiment of the invention, such a security device 
comprises at least 

- computer software code means for generating configuration information for 
security devices, 

- computer software code means for writing configuration infonaation in a 
15 hardware token, 

- computer software code means for encrypting a set of configuration information 
using a public key, 

- computer software code means for digitally signing a set of configuration 
information, 

20 - computer software code means for storing a set of configuration information in 
the memory module, and 

- computer software code means for receiving a request for configuration 
infconation and for sending a stored set of configuration information as a response 
to receiving said request. 

25 

In a further advantageous embodiment of the infonnation, configuration 
information comprises information about permitted conunimication peers. This 
infonnation about permitted communication peers can be effected for example by 

using any of the following: 
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- a list of alio wed peers, identified by identifiers recognized by an IPSBC key 
managejnent protocol, such as IKE, 

- a list of public keys of nodes that are allowed to connect to or via the network 
device, 

5 - a list of certificate authority certificates or public keys of certificate authorities, 
whereby nodes having a valid certificate from any of these certificate authoritities 

are allowed to connect to or via the network device, and for example 

- all nodes may be allowed to connect using a default poHcy. 

10 In a further advantageous embodiment of the invention a method for repdring 
failed VPN devices is provided. The method comprises at least the following 
steps: 

- taking of a new device from storage, 

- connecting network and power cables to the new device, 

15 - moving the hardware token from failed device to the new device, 

- powering the new device on, 

- performing a configuration method according to an embodimeait of the mvention 
by the device. 

20 In a further advantageous embodiment of the invention a method for repairing a 
failed VPN device in cases where the failure lies in a hardware token attached to 
the device is provided. The method comprises at least the following steps: 

- removing of failed hardware token, 

- taking of a new hardware token from a secure storage location, 
25 - attachment of the hardware token to the device, 

- powering the device on, 

- performing a configuration method according to an embodiment of the inventton 
by the device. 
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FURTHER ASPECTS OF THE INVENTION 

Figure 2a illustrates a further advantageous embodiment of the invention. The 
5 embodiment provides a mefhod for setting up commnnication parameters in a 
virtual private network node, for enabling the node to connect to at least one other 
node in the virtual private network. The method comprises at least the steps of 

- reading 200 information from a hardware token for determining how to connect 
to a packet data network, 

10 - reading 210 information from die hardware token for determining how to obtain 
configuration information for the virtnal private network node, 

- connecting 220 to a packet data network on the basis of information read from 
the hardware token, 

- obtaining 230 configuration information for the virtual private network node on 
15 the basis of mformation read from the hardware token, and 

- using 240 obtained configuration information for setting up the communication 
parametets. 

The information for determining how to connect to a packet data network can for 
20 example comprise IP address, network mask, and default gateway information for 

the virtual private network node in order to allow the node to communicate with a 
packet data network. The information can also comprise an indication that the 
virtual private network node shall obtain an IP address and basic routing 
information dynamically, for example using the DHCP protocol. 

25 

The configuration mformation can be obtained in a variety of ways. For example, 
the information in the hardware token can indicate directly a network address from 
which to obtain the configuration information. The network address can be an IP 
address, or in the form of an URL (Uniform Resource Locator). The information 
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can also specify m identifier with which to indicate to the computer node 
answering requests sent to the specified network address, which configuration data 
set to send back as a response to the request. 

5 In a further advantageous embodiment of the invention, (he information in the 
hardware token can indicate an indirect way of obtaining the configuration 
information. For example, the information in the hardware token can comprise an 
indication of a service from where to request further network address and/or URL 
information for obtaiiiing the configuration information, such as a network address 
10 and/or URL of such a service. Further, the information in the hardware token can 
comprise an identifier witii which to obtain further network address and^or URL 
information for obtaining the configuration information. 

Figure 2b illustrates a further advantageous embodiment of the invention. The 
15 steps 200, 210, 220, 230, and 240 are the same as in figure 2a, whereby their 
description is not repeated here. The embodiment of figure 2b further oon^rises 
the steps of 

- making 232 a connection to a network addi-ess by said certain secuiity node, 

- obtaining 234 a set of infionnation from the computer node responding to said 
20 connection to said network address, 

- reading 235 a first security item from said hardware token, 

- verifying 236 the authenticity of said set of information on the basis of said 
security item, and 

- decrypting 237 said obtained set of information on the basis of a second security 
25 item stored in the hardware toketL 

The steps of verifying 236 and decrypting 237 can also be performed in the 
reverse order, depending on liow the set of information was prepared by the entity 
that prepared the set of information. 
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The first security item can be for example a preshared key, a shared secret, or or 
for example a certificate. Tb.Q second security item can for example be a secret 
key, a preshared key, or a shared secret. The first and second security items may in 
5 some applications be the same, which is feasible for example if the security item is 
a preshared key. 

For security reasons, it is advantageous also to have a security item such as a key 
pair or a shared secret key in the hardware token. However, in certain 

10 embodiments of the invention, no security keys are stored in the hardware token. 
This means that the first contact from a remote security device to the entity which 
provides the fall confLgoration information proceeds without authentication, which 
is a vulnerability in the security sense. Also the first message sent will be 
unenciypted due to lack of any encryption keys. However, an encrypted 

15 connection can be set up for example using the secure shell protocol, the TLS 
protocol, or some other encryption protocol which does not require a prior 
exchange of encryption keys i.e. which provides for negotiating an encryption key 
in the beginning of the connection. After startup of encryption, it will not be 
possible for malicious third parties to intercept and alter the messages any more. 

20 While such a vuhierability is not acceptable for high security applications, it may 
very well be acceptable in some situations and for some organizations. 

Figure 3 illustrates a method according to a further aspect of the invention. This 
aspect of the invention provides a method for settmg up a secured communications 
25 network, which network comprises at least two security nodes connected to a 
packet data network. The method comprises at least the steps of 

- producing 300 configuration informatiou for the security nodes, 

- storing 310 said produced configumtion information. 
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- inserting 320 a part of configuiation information corresponding to a certain 
security node into a certain hardware token, 

- reading 330 of configuration information from said certain hardware token by 
said certain security node, 

5 - obtaining 340 the rest of produced configuration inforcnation for said certaia 
security node by said certain security node on the basis of data read from said 
certain hardware token, and 

- setting 350 of conamunication parameters within said certain security node on the 
basis of said obtained configuration information. 

10 

In a further advantageous embodiment of the invention, at least a part of 
configuration information pertaining to a node is encrypted 302 using public key 
cryptography with the public key of the node. In particular, in this embodiment the 
method also comprises the step of encrypting at least a part of configuration 
15 information corresponding to said certain security node on the basis of a public 
key corresponding to a secret key caused to be stored in said certain hardware 
token corresponding to said certain security node. 

In a further advantageous embodiment of the invention, the encryption 302 is 
20 performed using a shared secret, such as a preshared key. In particular, in this 
embodiment the method further comprises the step of encrypting at least a part of 
configuration information corresponding to said certain security node on the basis 
of a shared secret stored in said certain hardware token corresponding to said 
certain security node. 

25 

In a still further embodiment of the invention, produced ccaifiguration information 
is signed 304 digitally. The digital signing can be effected as well before as after 
the encryption step. 



wo 02/078290 



PCT/FT02/00250 



34 

Depending on the desired security level of a particular application of the inventive 
method, the configuration information can be left unencrj'pted and unsigned, or 
the configuration information can be only signed or only encrypted. 



5 la an advantageous embodiment, fhe configuration information is obtained using 
an authenticated connection. This embodiment is illustrated in figure 3b. In this 
embodiment of the invention, the metiiod further comprises the steps of 

- reading 332 a network address from said certain hardware token by said certain 
security node, 

10 - reading 334 a first security item from said certain hardware token by said certain 
security node, and 

- in said step of obtaining 340 the rest of produced configuration infoimation, the 
steps of 

- making 342 a connection to said network address by said certain security node, 
15 - verifying 344 the identity of the computer node responding to said connection to 

said network address on the basis of said first secoiity item, and 

- confirming 346 the identity of said certain security node to said computer node 
on the basis of a second security item stoned in said certain hardwane token. 



20 Hie other method steps illustrated in figure 3b are the same as in figure 3a, 
whereby their description is not repeated here. 

The first security item can be for example a certificate, pre-shared key, or a shared 
secret. The second security item can be for example a secret key or a shared secret. 
25 If the first security item and the second security item are shared secrets, they can 
even be the same. Tlie network address can be for example an IP address or an 
URL. The invention is not limited to the network address specifying a location 
from where to obtain configuration information. As described previously in this 



wo 02/078290 



PCT/5I02/00250 



35 

specification, the information read from the hardware token can comprise an 
indirect indication of the source of configuration infonnation. 

In a farther advantageous embodimefnt of the invention, the connection which is 
5 used to obtain the configuration information is not authenticated, but the retrieved 
configuration information is checked for authenticity before applying the 
configuration infonnation. Such an embodiment is illustrated in figoie 3c. In 
particular, in this embodiment the method further comprises ttie steps of 

- reading 332 a network address from said certaiii hardware token by said certain 
10 security node, 

- reading 334 a security item from said certain hardware token by said certain 
security node, and 

- in said step of obtaining 340 the rest of produced configuration information, the 
steps of 

15 - making 342 a connection to said network address by said certain security node, 

- obtaining 347 a set of infonnation from a computer node responding to said 
connection to said network address, and 

- verifying 348 the authenticity of said set of information on the basis of said 
security item. 

20 The other method steps illustrated in figure 3c are the same as in figure 3a, 
whereby their description is not repeated here. 

The security item can be for example a certificate, a pre-shared key or a shared 
secret 

25 

In a further advantageous embodiment of the invention the method further 
comprises the step of decrypting said obtained set of infonnation by said certain 
security node on the basis of a security item stored in the hardware token for 
obtaining the rest of configuration information for said certain security node. This 
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security item can be for example a secret key or a pre-shared key or a shared 
secret. In such an embodiment of the invenfion where the hardware token 
comprises a public and secret key pair, the set of information is advantageously 
encrypted using the public key, whereby the security node can decrypt the 
5 information using the secret key. However, the decryption key can be different 
from the key or key pair used to authenticate the node. 

According to a further aspect of the invention, a method for producing and 
distributing configuration data for a virtual private network is provided. Such an 
10 embodiment of the invention Is illustrated in figure 4a. Hie virtual private network 
comprises at least two security nodes connected to a packet data network. The 
method comprises at least the steps of 

- producing 400 configuration information for the security nodes; 

and for each security node for which configuration information was produced, 
15 - storing 410 a part of said produced configuration information of the security 
node in a hardware token corresponding to the security node, 

- encrypting 420 at least a part of configuration information corresponding to the 
security node, 

- digitally signing 430 said at least a part of configuraticoi information, and 

20 - storing 440 said encrypted and digitally signed configuration information in a 
memoiy means accessible to a distribution entity. 

In various further embodiments of the invention, the signing step 430 is performed 
before the encrypting step 420. 

25 

The distribution entity can be the same entity as the configuration management 
entity. It is possible that the virtaai private network comprises also such security 
nodes for which configuration information is not generated in a management node, 
for example if configuration iofonuation is specified and entered manually into a 
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computer node without help of the inventive configuration system. Hierefore, the 
use of the invention does not block the use of security nodes which do not 
participate in the inventive activity. 

5 In a ficirt2ier advantageous embodiment of the invention, the method comprises also 
steps, in which hardware tokens are prepared for security nodes. Such an 
embodiment is illustrated in figure 4b, According to the embodiment, the method 
further comprises steps in which 

- a public and secret key pair is caused 402 to be stored in the hardware token for 
10 use in autlienticating the security node and for decryption of configuration 

information, and 

- a certificate is stored 404 in the hardware token for authenticating the 
management entity and checking of the digital signature of the configuration data. 
Other steps shown in figure 4b are the same as in figure 4a, whereby their 

1 5 description is not repeated here . 

According to a further aspect of the invention, a system 500 for managing 
configuration information of a sectu:e communications network is provided, said 
secure communications network having a plurality of security nodes connected to 
20 a packet data network. Such a system is illustrated in figure 5. The system 
comprises at least 

- a first computer node 510, 

- a configuration management entity 512 in said first computer node, 

- a second computer node 520, 

25 - a distribution entity 522 in said second computer node, 

- a memory means 530 accessible by said distribution entity, 

- connected to said first computer node, means 540 for inserting information in a 
hardware token, 

- computer software code means 552 for generating configuration information, 
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- computer software code means 554 for encrypting a set of configuration 
information, 

- computer software code means 556 for digitally signing a set of configuration 
information, 

5 - computer software code means 558 for causing a set of configuration information 
to be stored in said memory means, 

- computer software code means 560 in said distribution entity for receiving a 
request for configuration information from a security node and for transmitting a 
set of configuration information as a response to receiving a request for 

10 configuration infoitnation. 

The means 540 for inserting information in a hardware token can be a device for 
writing information into smart cards or other types of hardware tokens. 

15 Although in figure 5 the distribution entity is illustrated to reside in a different 
computer node as the management entity, in other embodiments of the invention 
both entities can be located in the same computer device. 

According to a fiirther aspect of the invention, a secmity device 600 for a secured 
20 communications network which is provided. Such a security device is illustrated in 
figure 6. The security device has at least two network interfaces, a memory 
module and a processor. The security device further comprises at least 

- a hardware token reader 610 for connecting to a hardware token and for reading 
information from a hardware token, 

25 - computer software code means 620for reading information from a hardware 
token, 

- computer software code means 625 for transmitting a request of configuration 
information to a network address. 
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- computer software code means 630 for receiving a set of confignration 
information, 

- computer software code means 635 for decrypting a received set of configuration 
information, 

5 - computer software code means 640 for verifying authenticity of a received set of 
configuration information on the basis of a security item obtained from a hardware 
token, and 

- computer software code means 645 for setting of communication parameters on 
the basis of a received set of configuration information. 

10 The security item can be for example a certificate or a shared secret key. 



FURTHER CONSIDERATIONS 

15 A secret key can be introduced into a hardware token in two basic ways: either by 
inputting a predefined secret key to the hardware token, or by causing the 
hardware token itself to compute a public and secret key pair and to store the 
computed keys within the hardware token. Both ways are known ways to insert a 
secret key into a hardware token. The latter way of having the hardware token 

20 itself compute the key pair has the advantage that the secret key never exists 
outside the hardware token, not even in the computer system used to otherwise 
initialise the hardware token and input information in it. Either of these ways can 
be used in various embodiments of the invention. 

25 The type of the hardware token reader hi a security device is naturally dependent 
on the type of hardware tokens intended to be used with the device. Many different 
types of hardware tokens exist at flie time of writing of this patent application, and 
many different types of tokens can be expected to be developed in the future. The 
invention is not limited to use any specific type of hardware tokens. For example, 
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the hardware token can be a smart card or for example a small device comprising a 
niemory means and a USB comiector. Preferably, for security reasons, the 
hardware token comprises a processor capable of performing public and secret key 
operations so that the hardware token can perfonn all operations where the secret 
5 key is needed so that the secret key does not need to exist outside the hardware 
token. 

The invention is not limited to any particular type of network. For example, the 
invention can be implemented in IPv4 as well as IPv6 networks. 

10 

The invention has been described using some particular advantageous 
embodiments as examples. However, various implementations of the invention are 
not limited to the described examples, and the invention can be realized in many 
different ways within the scope of the attached patent claims. 

15 
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Claims 

1. Method for setting up communication parameters in a virtual private network 
node for connecting to at least one other node in the virtual private netv(rork 

5 characterised in that that the method comprises at least the steps of 

- reading information from a hardware token for determining how to connect to a 
packet data network, 

- reading information from the hardware token for determining how to obtain 
configuration information for the virtual private network node, 

10 - connecting to a packet data network on the basis of information read from the 
hardware token, 

- obtaining configuration information for the virtual private network node on the 
basis of information read from the hardware token, and 

- using obtained configuration information for setting up die communication 
15 parameters, 

2. Method according to claim 1 characterised in that said infonnation for 
detararining how to connect to a packet data network comprises IP address, 
network mask, and default gateway information for the virtual private network 

20 node. 

3. Method according to claun 1 characterised in that said information for 
determining how to connect to a packet data network comprises an indicatian that 
the virtual private network node shall obtain an IP address and basic routing 

25 information dynamically. 
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4. Method according to claim 1 cliaracterised in fliat said infonnation for 
determiQing how to obtain configuration information for the virtual private 
network node comprises a network address from which to obtain the configuration 
information. 

5 

5. Method according to claim 1 characterised in that said information for 

determining how to obtain configuration information for the virtual private 
network node comprises an URL from which to obtain the configuration 
information. 

10 

6. Method according to claim 1 characterised in that said infonnation for 
detenrnning how to obtain configoration infonnation for the virtual private 
network node comprises a an indication of a service from where to request further 
network address and/or URL information for obtainmg the configuration 

15 information. 

7. Method according to claim 1 characterised in that said information for 
determining how to obtain configuration information for the virtual private 
network node comprises an identifier with which to obtain further networic address 

20 and/or URL information for obtaining the configuration information. 
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8. Method according to claim 1 characterised in that it further comprises at least 
the steps of 

- maldng a connection to a network address by said certain security node, 

- obtaining a set of information from the computer node responding to said 
5 connection to said network address, 

- reading a first security item from said hardware token, 

- verifying the authenticity of said set of information on the basis of said security 
item, and 

- decrypting said obtained set of information on the basis of a second security item 
10 stored in the hardware token. 

9. Method for setting up a secured communications network, which network 
comprises at least two security nodes connected to a packet data network, 
characterised in that that the method comprises at least the steps of 

15 - producing configuration information for the security nodes, 

- storing said produced configuration information, 

- inserting a part of configuration information corresponding to a certain security 
node into a certain hardware token, 

- reading of configuration information from said certain hardware token by said 
20 certain security node, 

- obtaining the rest of produced configuration information for said certain security 
node by said certain security node on the basis of data read from said certain 
hardware token, and 

- setting of communication parameters within said certain security node on the 
25 basis of said obtained configuration information. 
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10. A method, according to claim 9 characterised in that the method further 
comprises the steps of 

- reading a network address from said certain hardware tokeai by said certain 
security node, 

5 - reading a first security item from said certain hardware token by said certain 
security node, and 

- in said step of obtaining the rest of produced configuratioa information, the steps 

of 

- making a connection to said network address by said certain security node, 

10 - verifying the identity of the computer node responding to sEud connection to said 
network address on the basis of said first security item, and 

- confirming the identity of said certain security node to said computer node on the 
basis of a second security item stored in said certain hardware token. 

15 11. A mefliod according to claim 9 characterised in that the method further 
comprises the steps of 

- reading a network address from said certain hardware token by said certain 
security node, 

- reading a security item from said certain hardware token by said certain security 
20 node, and 

- in said step of obtaining the rest of produced configuration information, the steps 
of 

- making a connection to said network address by said certain security node, 

- obtaining a set of information friom a computer node responding to said 
25 connection to said network address, and 

- verifying the authenticity of said set of information on the basis of said security 
item. 
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12. A method according to claim 11 characterised in that the method further 
comprises the step of decrypting said obtained set of information by said certain 
security node on the basis of a security item stored in the hardware token for 
obtaining the rest of configuration information for said certain security node. 

5 

13. A method according to claim 9 cbaracterised in that the method ftather 

comprises the step of encrypting at least a part of configuration information 
corresponding to said certain security node on the basis of a public key 
corresponding to a secret key caused to be stored in said certain hardware token 
10 corresponding to said certain security node. 

14. A method according to claim 9 characterised in that the method further 
comprises the step of encrypting at least a part of configuration information 
corresponding to said certain security node on the basis of a shared secret stored in 

15 said certain hardware token corresponding to said certain security node. 

15. A method according to claim 9 characterised in that the method ftuther 
comprises the step of digitally signing said at least part of configuration 
information. 
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16. Method for producing and distributing configuration data for a virtual private 
network, which network compdses at least two security nodes connected to a 
packet data network, characterised in that the method comprises at least the steps 
of 

5 - producing configuration information for the security nodes; 

and for each security node for which configuration iufonnatLon was produced, 

- storing a part of said produced configuration information of the security node in 
a hardware token corresponding to the security node, 

- encrypting at least a part of configuration information corresponding to the 
10 security node, 

- digitally signing said at least a part of configuration infonnation* and 

- storing said encrypted and digitally signed configuration information in a 
memory means accessible to a distribution entity. 

13 17. A method according to claim 16 characterised in that the method further 
comprises steps, in which 

- a public and secret key pair is caused to be stored in the hardware token for use 
in authenticating the security node and for decryption of configuration 
information, and 

20 - a certificate is stored in the hardware token for authenticating the management 
entity and checking of the digital signature of the configuration data. 
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1 8. A system for managing comBguration information of a secure coinmimicatioiis 
network, said secure communications network having a plurality of security nodes 
connected to a packet data network, charactemed in that the system comprises at 
least 

5 - a first computear node, 

- a configuration naanagement entity in said first computer node, 

- a second computer node, 

- a distribution entity in said second computer node, 

- a memory means accessible by said distribution entity, 

10 - connected to said first computer node, means for inserting information in a 
hardware token, 

- computer soibvare code means for generating conftgaratiozi information, 

- con3g>uter software code means for encrypting a set of configiuation information, 

- computer software code means for digitally signing a set of configuralion 
15 information, 

- computer software code means for causing a set of configuration information to 

be stored in said memory means, 

- computer software code means in said distribution entity for receiving a request 
for coufigmation information from a security node and for transmitting a set of 

20 configuration infornoation as a response to receiving a request for confxgmration 
information. 
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19. A security device for a secured commumcations network which security 
device has at least two network interfiaces, a memoiy module and a processor, 
characterised in that the device comprises at least 

- a hardware token reader for connecting to a hardware token and for reading 
5 information from a hardware token, 

- computer software code means for reading information from a hardwaie token, 

- computer software code means for transmittnig a request of configuration 
information to a network address, 

- computer software code means for receiving a set of configuration information, 
10 - computer software code means for decrypting a received set of configuration 

information, 

- computer software code means for verifying authenticity of a received set of 
configuration information on the basis of a seciuity item obtained from a hardware 
token, and 

15 - computer software code means for setting of communication parameters on the 
basis of a received set of configuration information. 
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